Your privacy is important to us. The principles relating to processing of personal data in accordance with the General Data Protection Regulation (GDPR) – transparency, lawfulness, purpose limitation, accuracy and data minimisation – are also the standards we set for ourselves when handling your data. We are strongly committed to living up to the trust you place in us. Consequently, we protect your personal data in particular against unauthorised access.
The controller is:
MA Lighting International GmbH
An der Talle 24-28
D-33102 Paderborn, Deutschland
Phone: +49 52 51 68 88 65 10
Fax: +49 52 51 68 88 65 88
Managing Director: Stephan Saremba
Local Court Paderborn Register No. HRB 3891
VAT ID: DE 813 253 386
I. On overview of data protection
1. General information
The following information will provide you with an easy to navigate overview of what will happen with your personal data when you visit our website. The term “personal data” comprises all data that can be used to personally identify you. For detailed information on the subject of data protection, please refer to our Data Protection Declaration, which we have included below this document.
2. Data collection on our website
Who is the responsible party for the collection of data on this website?
The data on this website are processed by the operator of the website, whose contact information is available in section “Legal Notice“ of this website.
How do we collect your data?
We collect your data as a result of your sharing them with us. For example, this may involve data that you enter in a contact form.
Our IT systems automatically record other data when you visit our website. These data are primarily technical information (e.g. web browser, operating system or time the site was accessed). This information is recorded automatically as soon as you access our website. Furthermore, data are processed by the plug-ins or programs we use.
For what purposes do we use your data?
Some of the data are collected to guarantee the error free provision of the website. Other data may be used to analyse your user behaviour.
What rights do you have with regard to your personal data?
You have the right to receive information about the source, recipient and purpose of your stored personal data at any time and free of charge.You also have the right to demand that your data are rectified, blocked or erased. Please do not hesitate to contact us at any time at the address given in section “Legal Notice“ on this website if you have questions about this or any other data protection related issues. Furthermore, You have the right to lodge a complaint with the responsible supervising authority.
3. Analysis-tools and third party tools
You do have the option to object to such an analysis. We will inform you on the objection options in this Data Protection Declaration.
II. Detailed information
1. General information
a) Personal data
Personal data is information relating to an identified or identifiable natural person. This includes information about your identity such as your name, your e-mail address, or your postal address. Information that cannot be linked with your identity (such as statistical information used to count the number of website users) is not considered personal information.
In principle, you can use our online service without disclosing your identity and without providing personal data. In that case we will only collect general information about your visit to our website. However, personal data are collected from you for some of the services offered. These data are processed by us solely for the purpose of using this online service, in particular to provide the requested information.
An automated decision-making process based on your personal data does not take place in connection with the use of our online service.
b) Collection, processing and use of personal data when visiting our website
As the website operator, based on our legitimate interest (see Article 6 section lit. f. GDPR), we collect data regarding access to this website and store such data as server log files on the website server. The following data are logged in this way:
• website visited
• file, date and time of access
• volume of data sent (in bytes)
• report on successful access
• browser used (type and version)
• operating system used
• source/referrer from which you accessed the site (the website you visited before)
• IP-address used
The server log files are erased regularly and automatically. The data are stored for statistical evaluations for the purpose of operation, optimisation and for security reasons, e.g. to clarify cases of misuse or malfunctions. If data must be collected for evidentiary purposes, they are excluded from erasure until matters have been finally resolved. These data are not merged with other data sources.
Your personal data are transmitted in encrypted form over the Internet. We use SSL (Secure Socket Layer) encryption for the data transmission.
c) Legal basis of data processing
Insofar as we obtain your consent to processing of your personal data, Article 6 section 1 a) of the GDPR constitutes the legal basis for such data processing.
Insofar as we process your personal data because processing is necessary under a legal obligation, Article 6, 1 lit. c) of the GDPR constitutes the legal basis for such data processing.
Furthermore, Article 6 section 1 lit. f) of the GDPR may constitute the legal basis for data processing, if processing of your personal data is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by your interests or your fundamental rights and freedoms which require protection of personal data.
Cookies are small text files that are stored on your system by your browser. The cookies remain stored until your browser is closed and can also automatically store certain information again even after you have left our website, for example if you call up our website again.
(1) Our website uses the following types of cookies, the scope and function of which are explained below:
• Transient cookies (see b)
• persistent cookies (see c)
(2) Transient cookies are automatically deleted when you close your browser. These include in particular session cookies. They store a so-called session ID, which can be used to assign various requests from your browser to the respective session. This enables your computer to be recognised when you return to our website. The session cookies are deleted when you log out or close your browser.
(3) Persistent cookies remain on your system and enable us to recognize your browser the next time you visit. This allows us to take your saved settings and preferences into account during your next visit to our website. Persistent cookies will remain archived for a longer period of time. Check the cookie settings of your browser to find out about the storage period.
(4) You can configure the settings of your browser according to your preferences, e.g., to make sure that you are notified every time cookies are placed and to enable you to accept or reject cookies on a case-by-case basis or to exclude the acceptance of third party cookies or of all cookies. Please note that in that case you may not be able to use all functions of this website. Different browsers offer differing ways to configure cookie settings. This is described in the help menu of each browser which explains how you can change your cookie settings.
e) Rights of the data subject
We attach great importance to explaining the processing of your personal data as transparently as possible and to informing you about the rights to which you are entitled. If you would like more detailed information or wish to exercise your rights, you can contact us at any time so that we can respond to your request.
You have extensive rights with regard to the processing of your personal data. First of all, you have an extensive right to information and can demand the rectification and/or erasure or blocking of your personal data if applicable. You can also demand a restriction of the processing and have a right of objection. With regard to the personal data you transmit to us, you also have the right to data portability.
If you wish to exercise any of your rights and/or obtain further information, please contact us directly (see contact details above).
If your personal data is processed on the basis of a balancing of interests in accordance with Article 6 section 1 lit. f), you may object to this data processing. Your objection will lead to a review and, if necessary, termination of the data processing. You will be informed of the result of the review and - if the data processing is to be continued after all - will receive more detailed information from us as to why the data processing is permissible.
f) Protection of minors
Children and young people under 18 years of age should not transfer any personal data to us without permission from their parents or guardians.
On our homepage you will find links to offers of other operators. These links are clearly marked. We have no influence on the content of the linked pages or the compliance with the relevant data protection regulations. Please check which data protection provisions apply to the respective linked site.
2. Integration of third party providers
a) Use of Google Web Fonts
This page uses so-called web fonts provided by Google for the uniform display of fonts. The Google Fonts are installed locally. There is no connection to Google servers.
b) Google Maps (with consent)
Google Maps (with consent)
This website uses the mapping service Google Maps. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
To enable the use of the Google Maps features, your IP address must be stored. As a rule, this information is transferred to one of Google’s servers in the United States, where it is archived. The operator of this website has no control over the data transfer. In case Google Maps has been activated, Google has the option to use Google Fonts for the purpose of the uniform depiction of fonts. When you access Google Maps, your browser will load the required web fonts into your browser cache, to correctly display text and fonts.
We use Google Maps to present our online content in an appealing manner and to make the locations disclosed on our website easy to find. This constitutes a legitimate interest as defined in Art. 6(1)(f) GDPR. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.
Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here:
For more information on the handling of user data, please review Google’s Data Privacy Declaration under: https://policies.google.com/privacy?hl=en.
With your consent, you can subscribe to our newsletter, in which we inform you about our current interesting offers. The advertised goods and services are named in the declaration of consent.
Following your future purchases of goods or services from us, we will send you e-mails with information on similar goods or services. These e-mails will not be sent unless an order is placed with us and are subject to the so-called double-opt-in-procedure. This means that we will not send you the information e-mails until you have confirmed your registration by sending us a confirmation e-mail via the link contained therein. You can request at any time to stop receiving such information e-mails from us. To do this, please send an e-mail with the subject "Unsubscribe" to infonoSpam@lightpower.de or to the contact data given in section “Legal Notice“. Alternatively, you can click on the link at the end of the information e-mail. No costs arise for you other than the transmission costs according to the basic rates.
We use the so-called double opt-in-procedure to register for our newsletter. This means that after your registration we will send you an e-mail to the specified e-mail address in which we will ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 24 hours, your information will be blocked and automatically deleted after one month. In addition, we save the IP addresses you use and the dates of registration and confirmation. The purpose of the procedure is to obtain proof of your registration and, if necessary, to clarify any possible misuse of your personal data.
Your e-mail address is the only required information for sending the newsletter. Further, separately marked data are used to address you personally and are submitted on a voluntary basis. After receiving your confirmation we save your e-mail address for the purpose of sending you the newsletter. The legal basis is Article 6 section 1 s. 1 lit. a) of the GDPR.
You can revoke your consent to the sending of the newsletter at any time and cancel your subscription to the newsletter. You can withdraw your consent by clicking on the link provided in every newsletter e-mail, (via this form on the website), by sending an e-mail to firstname.lastname@example.org or by sending a message to the contact data given in the section “Legal Notice“.
We would like to point out that we evaluate your user behaviour when sending the newsletter. The data are collected exclusively under a pseudonym, i.e. the IDs are not linked to your other personal data and there is no possibility of direct personal identification.
You may object to this tracking at any time by clicking on the separate link provided in every e-mail or by informing us through another communication channel. The information is stored for as long as you subscribe to the newsletter. If you unsubscribe, the data we store are strictly statistical and anonymous.
You can cancel your subscription to our newsletter, i.e. revoke your consent to receive it, at any time by clicking on the respective link provided in every newsletter. You can also revoke your consent by sending us a short message. For this purpose, please use the contact data stated above.
Based on our legitimate interests, we may store the removed e-mail address for up to three years before it is deleted, so that we are able to provide proof of a previously given consent. In this context, the e-mail address is solely stored for the purpose of defence against possible claims.
4. Contact form
There are a number of ways in which you can contact us, including using the contact form on our website.
If you wish to use the contact form of our online service, we record the personal data you provide in the contact form, in particular
• first name,
• company name,
• postal address,
• telephone number,
• e-mail address,
• IP-address and
• date and time of the inquiry.
We process the data transmitted through the contact form exclusively for the purpose of answering your inquiry or request and any follow-up questions that may occur.
You decide what information you send us through the contact form. The legal basis for the processing of your data is your consent according to Article 6 section 1 lit. a) of the GDPR.
Following the handling of the matter, we initially store the data in case there are any follow-up queries. A deletion of the data can be requested at any time. Otherwise, the data are erased after the matter has been fully dealt with; statutory retention obligations remain unaffected in each case.
5. Request per e-mail, telephone or telefax
If you contact us per e-mail, telephone or telefax, your request including the provided personal data (e-mail address, inquiry) will be stored and processed for the purpose of responding to your request. These data will not be disclosed to third parties without your consent. Basis for processing is Article 6 section 1 lit. b of the GDPR if the purpose of your request relates to the conclusion of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Article 6 section 1 lit. a GDPR) and / or our legitimate interests (Article 6 section 1 lit. f GDPR) since we have a legitimate interest in the effective processing of requests addressed to us. The data we receive from you per contact request remain with us until you request us to delete them, revoke your consent to the storage or the purpose for the data storage no longer exists (e.g. after completion of your request). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.
6. Data processing (customer and contractural data)
We collect, process and use personal data only to the extent necessary for the establishment, content and structure or modification of the legal relationship (inventory data). The basis for this is Article 6 section 1 lit. b GDPR which permits the processing of data relating to the conclusion of a contract or pre-contractual measures. We collect, process and use personal data concerning the use of our website (usage data) only to the extent that this is necessary to make it possible for users to utilize the service or for invoicing purposes. The collected customer data are erased upon completion of the order or the termination of the business relationship. Statutory retention periods remain unaffected.
7. Job applications
You have the opportunity to submit job applications to us (e.g. by e-mail, by post). Below, you will find information on the scope, purpose and use of the personal data collected from you in connection with the application process. We assure you that the collection, processing and use of your data will occur in compliance with the applicable data privacy rights and all other statutory provisions and that your data will be treated as strictly confidential.
Scope and purpose of data collection
If you submit a job application to us, we will process your affiliated personal data (e.g. contact and communication data, application documents, notes taken during job interviews, etc.), if they are required to make a decision concerning the establishment of an employment relationship. The legal grounds for this are § 26 GDPR-new according to German Law (Negotiation of an Employment Relationship), Article 6 section 1 lit. b GDPR (General Contract Negotiations) and – provided you have given us your consent – Article 6, lit. a GDPR. You may revoke the consent given at any time. Within our company, your personal data will be disclosed exclusively to individuals who are involved in the processing of your job application.
If the job application is successful, the data you have submitted will be stored in our data processing systems on the basis of § 26 GDPR-new and Article 6 section 1 lit. b GDPR for the purpose of carrying out the employment relationship.
Data retention period
If we should not be able to offer you a position, if you decline a job offer, withdraw your application, revoke your consent to the processing of your data or ask us to delete your data, we will store your transferred data, incl. any physically submitted application documents for a maximum of 6 months after the conclusion of the application process (retention period) to enable us to retrace the details of the application process in the event of any discrepancies (Article 6 section 1 lit. f GDPR).
YOU HAVE THE OPTION TO OBJECT TO THIS STORAGE OF YOUR DATA IF YOU HAVE LEGITIMATE INTERESTS TO DO SO THAT OUTWEIGH OUR INTERESTS.
Once the retention period has expired, the data will be deleted unless there is a statutory retention obligation or any other legal ground that requires continuation of data storage. If it is evident that the storage of your data will be necessary after the expiration of the retention period (e.g. due to an anticipated or pending legal dispute), deletion will only take place when the data has become redundant. Other statutory storage obligations remain unaffected.
8. Use of our e-learning platform
If you wish to use our e-learning portal (https://elearning.malighting.com/), you can register by entering your e-mail address and a password of your choice. There is no obligation to use your real name, a pseudonymous use is possible. We use the so-called double opt-in procedure for registration, i.e. your registration is not completed until you have clicked on the link in the confirmation e-mail sent to you for this purpose. If your confirmation is not received within [24 hours], your registration will automatically be deleted from our database. The above mentioned data are obligatory; any additional information can be provided voluntarily on our platform.
If you use our platform, we store the required data for contract performance until you permanently delete your access. Furthermore, we store the voluntary data provided by you for the duration of your use of the platform, unless you delete them beforehand. You can manage and change all data in the secure customer area. The legal basis is Article 6 section 1 s. 1 lit. f of the GDPR.
An encrypted connection per TLS technolgy prevents unauthorised third parties from accessing your personal details, in particular financial data.
9. Use of Google Analytics
This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Irland. Google Analytics uses so-called “cookies“ that facilitate an analysis of your user behaviour on the website. The information generated by the cookies is usually transmitted to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, your IP address will be shortened by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area prior to transmission. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and Internet usage. The IP address transmitted by your browser as part of Google Analytics is not merged with other data from Google.
You can prevent the storage of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie that relate to your use of the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available under the following link: //http://tools.google.com/dlpage/gaoptout?hl=en.
As an alternative to the browser plug-in, you can click on the following link to prevent Google Analytics from collecting data on this website in the future: http://tools.google.com/dlpage/gaoptout?hl=en
An opt-out cookie will be placed on your device. If you delete your cookies, you have to click on the link again.
For further information, please see http://tools.google.com/dlpage/gaoptout?hl=en or http://www.google.com/intl/de/analytics/privacyoverview.html (general information about Google Analytics and data privacy).
Objection to data collection
You can prevent Google Analytics from collecting your data by clicking on the following link: Adjust cookie settings.
III. Our social media appearances
Data processing through social networks
We maintain publicly available profiles in social networks. The individual social networks we use can be found below.
Social networks such as Facebook, Twitter etc. can generally analyze your user behavior comprehensively if you visit their website or a website with integrated social media content (e.g., like buttons or banner ads). When you visit our social media pages, numerous data protection-relevant processing operations are triggered. In detail:
If you are logged in to your social media account and visit our social media page, the operator of the social media portal can assign this visit to your user account. Under certain circumstances, your personal data may also be recorded if you are not logged in or do not have an account with the respective social media portal. In this case, this data is collected, for example, via cookies stored on your device or by recording your IP address.
Using the data collected in this way, the operators of the social media portals can create user profiles in which their preferences and interests are stored. This way you can see interest-based advertising inside and outside of your social media presence. If you have an account with the social network, interest-based advertising can be displayed on any device you are logged in to or have logged in to.
Our social media appearances should ensure the widest possible presence on the Internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR. The analysis processes initiated by the social networks may be based on divergent legal bases to be specified by the operators of the social networks (e.g., consent within the meaning of Art. 6 (1) (a) GDPR).
Responsibility and assertion of rights
If you visit one of our social media sites (e.g., Facebook), we, together with the operator of the social media platform, are responsible for the data processing operations triggered during this visit. You can in principle protect your rights (information, correction, deletion, limitation of processing, data portability and complaint) vis-à-vis us as well as vis-à-vis the operator of the respective social media portal (e.g., Facebook).
Please note that despite the shared responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are determined by the company policy of the respective provider.
The data collected directly from us via the social media presence will be deleted from our systems as soon as you ask us to delete it, you revoke your consent to the storage or the purpose for the data storage lapses. Stored cookies remain on your device until you delete them. Mandatory statutory provisions - in particular, retention periods - remain unaffected.
Individual social networks
We have a profile on Facebook. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter Meta). According to Meta’s statement the collected data will also be transferred to the USA and to other third-party countries.
We have signed an agreement with Meta on shared responsibility for the processing of data (Controller Addendum). This agreement determines which data processing operations we or Meta are responsible for when you visit our Facebook Fanpage. This agreement can be viewed at the following link: https://www.facebook.com/legal/terms/page_controller_addendum.
You can customize your advertising settings independently in your user account. Click on the following link and log in: https://www.facebook.com/settings?tab=ads.
Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.
We use the short message service Twitter. The provider is Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland.
You can customize your Twitter privacy settings in your user account. Click on the following link and log in: https://twitter.com/personalization.
Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://gdpr.twitter.com/en/controller-to-controller-transfers.html.
We have a profile on Instagram. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://help.instagram.com/519522125107875 and https://de-de.facebook.com/help/566994660333381.
We have a LinkedIn profile. The provider is the LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies.
If you want to disable LinkedIn advertising cookies, please use the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.
IV. Data protection officer
MA Lighting International GmbH
An der Talle 24-28
V. Right to lodge a complaint
You have the right to report suspected violations of the provisions of data protection law and to complain to the responsible supervisory authority. You can address the complaint to:
Landesbeauftragte für Datenschutz und Informationsfreiheit
Nordrhein-Westfalen (State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia)
Postfach 20 04 44
You can also, especially if you are not a German citizen, either address the responsible authority of your member state or contact:
Die Bundesbeauftragte für den Datenschutz und die Informationsfreiheit (Federal Commissioner for Data Protection and Freedom of Information)
Telefon: +49 (0)228 997799-0
Fax: +49 (0)228 997799-5550
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://logmeincdn.azureedge.net/legal/lmi-customer-dpa-2020v1.pdf.
Furthermore, we have closed a data processing agreement (DPA) with the above-mentioned provider. This is a contract required by data protection law, which ensures that the provider only processes the personal data of our website visitors and webinar patricipants in accordance with our instructions and in compliance with the GDPR.
GoToWebinar is used to offer webinars for interested parties or customers (Art. 6 para. 1 lit. b GDPR). Insofar as consent is necessary, the use of the relevant tools or function is based on this consent (e.g. in the case of a recording); consent can be revoked at any time with effect for the future.
In doing so, GoToWebinar collect all data that you provide/enter to use the tools (email address and/or your telephone number). Furthermore, GoToWebinar process information regarding the duration of the conference, start and end (time) of participation in the conference, number of participants and other "contextual information" related to the communication process (meta data).
Furthermore, the provider of the tool processes all technical data that are necessary for providing the online communication. This includes in particular IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or speaker and the type of connection.
If content is shared, uploaded or otherwise made available within the tool, it will also be stored on the servers of the tool providers. Such content includes, but is not limited to, cloud recordings, chat/instant messages, voicemails, uploaded photos and videos, files, whiteboards and other information shared while using the service.
The data you enter in the registration form will remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies. Mandatory legal provisions - in particular retention periods - remain unaffected. Lightpower GmbH will only use the data for a purpose other than the aforementioned or transfer it to other third parties if this is legally permissible or the user has explicitly consented to it. Stored cookies remain on your terminal device until you delete them. Mandatory legal retention periods remain unaffected.
We have no influence on the storage period of your data stored by GoToWebinar for its own purposes. For details, please contact LogMeIn, Inc. directly.